I believe it is correct, SHOULD strive to trusted known sources. The final
mechanism SHOULD be one of (hard) failure. This is what we (ideally) strive
for. I believe anything weaker is a waste of computational resources, causes
confusion using neutral or even soft fails especially with repeated
transactions.
All the best,
Hector Santos
> On Mar 5, 2024, at 9:29 AM, Alessandro Vesely <ves...@tana.it> wrote:
>
> Hi,
>
> in section 5.5.1, Publish an SPF Policy for an Aligned Domain, the last
> sentence says:
>
> The SPF record SHOULD be constructed
> at a minimum to ensure an SPF pass verdict for all known sources of
> mail for the RFC5321.MailFrom domain.
>
> As we learnt, an SPF pass verdict has to be granted to /trusted/ sources
> only. An additional phrase about using the neutral qualifier ("?") for
> public sources might also be added.
>
>
> Best
> Ale
> --
>
> _______________________________________________
> dmarc mailing list
> dmarc@ietf.org
> https://www.ietf.org/mailman/listinfo/dmarc
_______________________________________________
dmarc mailing list
dmarc@ietf.org
https://www.ietf.org/mailman/listinfo/dmarc
